Zeroday – Page 2 – TheCyberThrone

Microsoft Critical NTLM Zeroday with no official Patch

Researchers from 0patch have discovered a critical zero-day vulnerability in Windows, affecting multiple versions of the operating system. This vulnerability exposes users to credential theft through the theft of NTLM…

PravinKarthik December 10, 2024

Windows Server 2012 MOTW Zeroday vulnerability

Security researchers have discovered a critical 0-day vulnerability in Windows Server 2012 and Server 2012 R2. This previously unknown security flaw allows attackers to bypass the Mark of the Web…

PravinKarthik December 3, 2024

Exploring Microsoft AD CS bug CVE-2024-49019

Security researchers from TrustedSec have uncovered a critical zero-day vulnerability affecting Active Directory Certificate Services (AD CS) and were patched in Microsoft’s November Patch Tuesday, but its implications warrant closer…

PravinKarthik November 29, 2024

Mozilla releases patch for Zeroday flaw CVE-2024-9680 in Firefox

Mozilla Foundation has released the patch for a zero-day vulnerability Firefox, the flaw involves a use-after-free vulnerability in Firefox’s animation timelines, allowing attackers to execute malicious code. The vulnerability tracked…

PravinKarthik October 10, 2024

Ivanti releases patches to address CSA bugs

Ivanti has released patches for its Cloud Services Appliance (CSA) to address multiple vulnerabilities, including one that is actively being exploited in the wild. The vulnerabilities affect CSA versions 5.0.1…

PravinKarthik October 9, 2024

PoC for Microsoft Office Zeroday CVE-2024-38200 released

Security researcher Metin Yunus Kandemir have released the technical details and a PoC exploit that reveals a critical information disclosure flaw in Microsoft Office. This vulnerability, which affects multiple versions…

PravinKarthik October 5, 2024

Google addressed 10th Zeroday in Chrome CVE-2024-7965

Google has released a patch to address a new Chrome zero-day vulnerability that is actively exploited. The vulnerability tracked as CVE-2024-7965 with a CVSS score of 8.8 is an inappropriate…

PravinKarthik August 27, 2024

Google fixes ninth Zeroday CVE-2024-7971 in Chrome

Google released an emergency security update to address a Chrome zero-day vulnerability, tracked as CVE-2024-7971, that is actively exploited. The vulnerability is a type confusion issue that resides in Chrome’s V8 JavaScript…

PravinKarthik August 22, 2024